Replaying tokenized payment transactions

ABSTRACT

Methods, systems, and computer program products for replaying tokenized payment transactions are disclosed. A computer-implemented method may include generating or receiving a token for a tokenized payment transaction involving a merchant, creating an association between the token and the tokenized payment transaction, storing the association between the token and the tokenized payment transaction, providing the token to the merchant during the tokenized payment transaction to authorize payment, receiving a request from the merchant to provide the token during a subsequent transaction relating to the tokenized payment transaction, selecting a transaction record corresponding to the tokenized payment transaction to retrieve the token for the second transaction, and determining the token to provide to the merchant in the second transaction. In some examples, a non-payment identifier previously generated by a merchant or a user device is associated with the tokenized payment transaction and provided to the merchant to complete the second transaction.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is a continuation of U.S. patent application Ser. No.14/645,707, filed Mar. 12, 2015, which is incorporated by reference inits entirety.

TECHNICAL FIELD

The present disclosure generally relates to computer systems and, moreparticularly, to the replaying of tokenized payment transactions usingcomputer systems.

BACKGROUND

Consumers may use credit cards, debit cards, bank cards, and other formsof payment to purchase various goods and services. Card numbers usuallyremain the same for some time, such as during a period when a cardremains active. Thus, a cardholder may reuse the same card number whenpaying for various different purchases over a number of years. Also, acardholder may present the same card number used to make a purchaselater when requesting a refund since a card number generally does notchange frequently.

Contactless payment systems generally offer consumers the addedconvenience of mobile payments and improved security features. Forexample, unlike card accounts, a contactless payment system may not usethe same account identifier for different transactions. Instead, acontactless payment system may generate a new account identifier foreach transaction. Other scenarios where account identifiers may changeacross transactions include when a consumer uses a different underlyingcard account or when a card account expires and a new account identifieris issued.

However, the added security of contactless payment systems can createchallenges for consumers. For example, a consumer may not be able toreturn items purchased using a contactless payment system using the samemethod because different account identifiers are generated for thepurchase and the return. As such, merchants generally do not have a wayto accommodate users seeking to use a contactless payment system forfollow-on and other types of non-routine transactions. Therefore, newand improved ways of replaying contactless payment transactions are ofbenefit to consumers and merchants.

BRIEF DESCRIPTION OF THE DRAWINGS

Various examples of the present disclosure will be understood more fullyfrom the detailed description given below and from the accompanyingdrawings of various examples of the disclosure. In the drawings, likereference numbers may indicate identical or functionally similarelements. The drawing in which an element first appears is generallyindicated by the left-most digit in the corresponding reference number.

FIG. 1 is a block diagram illustrating a system architecture, inaccordance with various examples of the present disclosure.

FIG. 2 is a flow diagram for providing replay of tokenized paymenttransactions, according to an example of the present disclosure.

FIG. 3 is a flow diagram for providing replay of tokenized paymenttransactions using an application, according to an example of thepresent disclosure.

FIG. 4 is a flow diagram for providing replay of tokenized paymenttransactions using a non-payment identifier, according to an example ofthe present disclosure.

FIG. 5 is a block diagram of an exemplary computer system that mayperform one or more of the operations described herein.

DETAILED DESCRIPTION

Systems, methods, and computer program products are disclosed forreplaying tokenized payment transactions. In an example, a mobilepayment system replays a tokenized payment transaction to allow a userwho made a purchase using a contactless payment system to performexchanges, refunds, and/or other related transactions using contactlesspayment system technology.

In an example, a mobile payment system associated with an operatingsystem or application running on a mobile computing device generates atoken to use in a tokenized payment transaction (e.g., to authorizepayment for the purchase of goods or services). The mobile paymentsystem then creates an association between the token and a tokenizedpayment. The mobile payment system also may store the association, thetoken, and/or details of the tokenized payment transaction for futurereference.

In an example, the mobile payment system provides the token to amerchant during a first tokenized payment transaction (e.g., apurchase). The mobile payment system then later receives a request fromthe merchant to provide the token as part of a second transaction (e.g.,a return) related to the first tokenized payment transaction.

In an example, a user selects a transaction record in a digital walletor mobile payment application corresponding to the tokenized paymenttransaction to retrieve the token for the second transaction, and theuser provides the token to the merchant as part of a second transaction.For example, the user may provide the token to a merchant using acontactless payment system to complete a product refund or exchangeusing the contactless payment system.

In some examples, the mobile payment system generates and associates anon-payment identifier with a tokenized payment transaction. The mobilepayment system may provide the associated non-payment identifier to amerchant. The merchant then may store and reference the non-paymentidentifier to locate information about the tokenized payment transactionat another time.

In some examples, a merchant generates a non-payment identifier andprovides the non-payment identifier to the mobile payment system. Themobile payment system then may associate the non-payment identifier witha tokenized payment transaction and store the information for futuretransactions and reference.

Accordingly, aspects of the present disclosure provide users with theconvenience and security of using contactless and tokenized paymentsystems for both purchases and other types of related transactions,including relatively common transactions such as exchanges and refunds.

FIG. 1 illustrates an exemplary system architecture 100 in whichexamples of the present disclosure may be implemented. Systemarchitecture 100 includes one or more server machines 110, one or moredata stores 180, one or more client machines 102A-102N, and one or moremerchants 190 connected via one or more networks 104.

Network 104 may be a public network (e.g., the Internet), a privatenetwork (e.g., local area network (LAN) or wide area network (WAN)), orany combination thereof. In an example, network 104 may include theInternet, one or more intranets, wired networks, wireless networks,and/or other appropriate types of communication networks. In oneexample, network 104 may comprise a wireless telecommunications network(e.g., cellular phone network) adapted to communicate with othercommunication networks, such as the Internet. Network 104 also mayinclude one or more short-range wireless networks or beacon networks.

Data store 180 generally refers to persistent storage capable of storingvarious types of data, such as text, audio, video, and image content. Insome examples, data store 180 may include a network-attached fileserver, while in other examples data store 180 may include other formsof persistent storage such as an object-oriented database, a relationaldatabase, and so forth.

Client machine 102A may be a personal computer (PC), laptop, mobilephone, tablet computer, server computer, wearable computing device, orany other type of computing device. Client machine 102A may run anoperating system (OS) that manages hardware and software of the clientmachine 102A. A browser (not shown) may run on the client machines(e.g., on the OS of the client machines). The browser may be a webbrowser that can access content and services provided by web server 120,application server 122, or a combination of a web server 120 and anapplication server 122. Other types of computer programs and computerscripts also may run on client machine 102A.

Client machines 102A-102N each may include a respective mobile paymentsystem 130A-130N that allows a user to participate in mobile financialtransactions using a portable computing device. Generally, a mobilepayment system 130A may allow a user to make a contactless payment bysending a payment token as payment authorization to a near fieldcommunication (NFC) terminal 192 from a client machine 102A. Suchcontactless payments may be made by a user, for example, to pay for apurchase of goods or services, to make a donation, to make a deposit, totransfer funds, or for various other purposes. Further, suchtransactions may occur, for example, using NFC-enabled vending machines,NFC-enabled kiosks, NFC-enabled point-of-sale systems, and other varioustypes of NFC-enabled computer systems.

Server machine 110 and mobile payment systems 130A-130N each include arespective communication manager module 140-140N, token manager module150-150N, and wallet manager module 160-160N. In various examples, suchmodules may be combined, divided, and organized in various arrangementson one or more computing devices.

Merchants 190 generally refer to one or more parties that sell orotherwise provide products or services to various parties such asconsumers, businesses, governments, non-profit organizations, etc.Merchants 190 generally may provide goods or services by having aphysical presence, by operating online with a virtual presence, and/orwith the assistance of one or more intermediate agents (e.g., brokers,handlers, shippers, etc.).

In an example, merchants 190 may accept and process payments for goodsand services using one or more types of terminals and systems such asnear field communication (NFC) terminals 192, tokenized payment systems194, standard terminals 196, etc. A NFC terminal 192 generally describesa contactless payment system that allows a user to make secure paymentsusing short-range, wireless, and/or radio frequency identification(RFID) technology by exchanging small amounts of data with an in-rangecomputing device of the user. For example, a user may communicatepayment information to a NFC terminal 192 wirelessly by tapping orholding a computing device (e.g., a smartphone, a wearable computingdevice, etc.) near a NFC terminal 192 to pay for a purchase. Such NFCterminals 192 may process tokenized payment transactions.

In an example, a user may add one or more sources or methods of payment(e.g., a credit card, debit card, a bank account, etc.) to a paymentapplication running on a computing device (e.g., smart phone, smartwatch, etc.). However, instead of storing actual card or accountidentifiers on the computing device, a unique device account number maybe generated, encrypted, and stored securely in a secured element of thecomputing device. Next, a unique, single-use payment token to authorizea payment may be generated by the computing device, the paymentapplication, a third-party such as a payment processor, or another partyfor each payment transaction in which the user participates.

In an example, a user may provide a unique, single-use payment tokengenerated for specific payment transaction to a NFC terminal 192 via aNFC-enabled computing device to pay for a purchase. The merchant thenmay use the unique, single-use payment token alone or along with otherpayment information (e.g., a secure device-specific identifier, a securesurrogate account identifier, etc.) provided by the user's computingdevice to obtain payment from a payment processor, bank, or otherfinancial institution. The use of a unique, single-use payment token intokenized payment transactions is generally more secure than a reusablecredit card or account number because the payment token is valid for asingle transaction and cannot be reused by criminals to procureadditional financial transactions.

Tokenization generally describes the process of substituting a sensitivedata element with a non-sensitive equivalent (i.e., a token), which hasno extrinsic or exploitable meaning or value. Such tokenized data may bemapped or translated back to the original data using secure methods.Thus, a single-use payment token may be mapped or translated to anactual payment account to apply a form of payment, but the single-usepayment token has no meaning otherwise when used by itself.

A tokenized payment system 194 generally refers to any payment systemother than a NFC terminal 192. For example, a user may participate in atokenized payment transaction that does not involve a NFC terminal 192.For example, a merchant 190 may allow users to complete tokenizedpayment transactions online over a network 104 or using technology otherthan NFC.

A standard terminal 196 generally describes a point-of-sale system thatdoes not support contactless or tokenized payment transactions. Forexample, some standard terminals 196 of merchants 190 may be limited toprocessing cash and/or credit card transactions.

Server machine 110 may include one or more web servers 120 andapplication servers 122. Web server 120 may provide text, audio, image,and video content from server machine 110 or other sources (e.g., datastore 180) to client machines 102A-102N. Web server 120 also may provideweb-based application services, business logic, and updates to clientmachines 102A-102N. Client machines 102A-102N may locate, access, andconsume various forms of content and services from web server 120 usingapplications, such as a web browser, web servers, and various othertypes of computer applications, etc. Web server 120 also may receivetext, audio, video, and image content from client machines 102A-102N,which may be stored in data store 180 for preservation and/or sharing ofcontent.

In an example, a web server 120 is coupled to one or more applicationservers 122 that provide application services, data, business logic,and/or APIs to client machines 102A-102N. In some examples, suchapplication servers 122 also may provide such services to clientmachines 102A-102N without use of a web server 120.

In an example, web server 120 may provide client machines 102A-102N withaccess to one or more application server 122 services associated with amobile payment system 130. Such functionality also may be provided aspart of one or more different web applications, standalone applications,systems, plug-ins, web browser extensions, and application programminginterfaces (APIs), etc. In some examples, plug-ins and extensionsgenerally may be referred to, individually or collectively, as“add-ons.”

In an example, client machines 102A-102N may include an applicationassociated with a service provided by server machine 110 (e.g., mobilepayment system 130). For example, various types of computing devices(e.g., smart phones, smart televisions, tablet computers, smart wearabledevices, smart home computer systems, etc.) may use applications toaccess services provided by server machine 110, to issue commands toserver machine 110, and/or to receive content from server machine 110without visiting or using web pages.

In an example, functions performed by server machine 110 also may beperformed by client machines 102A-102N, in whole or in part. Inaddition, the functionality attributed to a particular component may beperformed by different or multiple components operating together.Further, server machine 110 may be accessed as a service provided bysystems or devices via appropriate application programming interfaces(APIs), and thus is not limited to use with websites.

For example, client machines 102A-102N each may include respectivemobile payment systems 130A-130N and/or one or more client modules of arespective mobile payment system 130A-130N for providing mobile paymentservices to a user. Further, server machine 110 may include a respectivemobile payment system 130 and/or one or more server-based modules of amobile payment system 130.

In an example, communication manager module 140 of mobile payment system130 generally performs communication related tasks associated withtokenized payment transactions. For example, a communication managermodule 140 may receive requests and provide responses that are bothinternal and external to mobile payment system 130.

In some examples, communication manager module 140 receives paymenttokens and non-payment tokens generated external to mobile paymentsystem 130. Communication manager module 140 also may receive requestsfrom a merchant 190 NFC terminal 192 or tokenized payment system 194 toprovide a payment token authorizing payment in a tokenized paymenttransaction. Communication manager module 140 then may later receive arequest to provide the payment token that was used or a differentnon-payment identifier of the tokenized payment transaction in asubsequent, related transaction. For example, a merchant 190 may requestthe payment token used in a first tokenized payment transaction torecall or retrieve the details of an initial contactless transaction forfurther processing, such as when a user wishes to return or exchange anitem originally purchased using a NFC terminal 192.

In an example, token manager module 150 of mobile payment system 130generates tokens for tokenized payment transactions. For example, tokenmanager module 150 may generate unique, single-use payment tokens to beused as a form of payment in a tokenized payment transaction. Tokenmanager module 150 also may generate various types of non-paymenttokens, such as a device token, a payment method token (e.g., a securecard token), a security token, a secondary or surrogate non-paymenttoken used to allow merchant 190 or a user to later reference atokenized payment transaction, etc.

In an example, token manager module 150 creates an association between atoken and a tokenized payment transaction. For example, token managermodule 150 may associate a token and a tokenized payment transaction sothat when a user selects or retrieves a corresponding transactionrecord, the user can provide the associated token to a merchant 190 fora related transaction. In one example, an association created between atoken and a transaction record for a tokenized payment transactionallows a user to provide a merchant 190 with a token used in an initialpurchase for a refund, product exchange, price match, later discovereddiscount, or other subsequent transaction relating to the initialpurchase. In some examples, token manager module 150 may store a tokenwith transaction data from a tokenized payment transaction, for example,locally on a client machine 102A or remotely in another data store 180(e.g., cloud storage).

In an example, wallet manager module 160 of a mobile payment system 130provides tokens to NFC terminals 192 and tokenized payment systems 194of merchants 190. Wallet manager module 160 also may exchange othervarious tokenized payment transaction data with NFC terminals 192 andtokenized payment systems 194.

In an example, wallet manager module 160 provides a token to a merchant190 as a form of payment in a first tokenized payment transaction. In asubsequent transaction associated with the first tokenized paymenttransaction (e.g., a return, exchange, price match, later discovereddiscount, etc.), a user may browse or search for the first transactionamong one or more digital wallet receipts using a digital walletapplication. The user then may select a digital wallet receiptassociated with the first transaction to retrieve the associated tokenused in the first transaction. The user then may tap, wave or hold theircomputing device near a NFC terminal reader 192 to provide the originaltoken to the merchant 190 in relation to the subsequent, relatedtransaction.

In an example, wallet manager module 160 may provide a non-paymentidentifier associated with a first tokenized payment transaction to aNFC terminal 192 or tokenized payment system 194 to allow the merchant190 to retrieve details of the first transaction. Wallet manager module160 also may retrieve a non-payment identifier associated with the firsttokenized payment transaction to allow a user to provide the non-paymentidentifier to the merchant 190 during a subsequent, related transactionusing a NFC terminal 192, tokenized payment system 194, or standardterminal 196. In one example, wallet manager module 160 may display anon-payment identifier (e.g., a unique numeric string, alphanumericstring, bar code, QR code, etc.) that a user can provide at a standardterminal 196 to return a product, exchange a product, obtain a pricematch, and/or obtain a later discovered discount associated with aprevious tokenized payment transaction.

In an example, wallet manager module 160 generates and associates anon-payment identifier with a tokenized payment transaction. Walletmanager module 160 then may provide the non-payment identifierassociated with the tokenized payment transaction to a merchant 190. Themerchant 190 may store the non-payment identifier received from the userfor the tokenized payment transaction and later use the non-paymentidentifier at a later time to retrieve details about the initialtransaction (e.g., when a user presents the non-payment identifierduring a subsequent, related transaction).

Similarly, a merchant 190 may generate a non-payment identifierassociated with the tokenized payment transaction and provide thenon-payment identifier to wallet manager module 160, for example, via aNFC terminal 192. Wallet manager module 160 then may associate thenon-payment identifier with the tokenized payment transaction and storethe information for later reference. For example, wallet manager module160 may store the non-payment identifier and transaction details locallyon a client machine 102A. In some examples, wallet manager module 160stores the non-payment identifier in an accessible data store 180 toallow such information to be retrieved and provided to a merchant usingone or more different computing devices. Wallet manager module 160 thenmay provide the non-payment identifier to the merchant 190 at anothertime to retrieve original transaction details and perform activitiesrelating to the earlier transaction.

In some examples, a user may provide a payment token and/or anon-payment identifier associated with a tokenized payment transactionto one or more other users. For example, a user may provide a paymenttoken or a non-payment identifier for a tokenized payment transaction toallow a second user to perform a subsequent transaction relating to thetokenized payment transaction. In one example, a user provides a paymenttoken or non-payment identifier of a transaction to another user inrelation to a gift to allow the other user to exchange or receive arefund for the gift. Also, an employer may provide such information toan employee or contractor to allow that individual to obtain a refund orexchange for a tokenized payment transaction on behalf of the employer.

FIG. 2 is a flow diagram for providing replay of tokenized paymenttransactions, according to an example of the present disclosure. Themethod 200 may be performed by processing logic that may comprisehardware (circuitry, dedicated logic, programmable logic, microcode,etc.), software (such as instructions run on a general purpose computersystem, dedicated machine, or processing device), firmware, or acombination thereof. Examples in the method 200 are described withrespect to mobile payment system 130A for the sake of consistency. Suchexamples also generally apply to other mobile payment system 130, 130Nexamples described herein.

Method 200 begins at block 202 when token manager module 150A of mobilepayment system 130A creates an association between a token and atokenized payment transaction involving a merchant. In an example, tokenmanager module 150A associates a payment token with a tokenized paymenttransaction using one or more identifiers. For example, token managermodule 150A may create one or more new identifiers or use one or moreexisting tokenized payment transaction details as identifiers to link apayment token with a corresponding transaction. Further, token managermodule 150A also may store a copy of the payment token with anassociated tokenized payment transaction record or receipt.

At block 204, token manager module 150A of mobile payment system 130Astores the association between the token and the tokenized paymenttransaction. In an example, token manager module 150A stores a paymenttoken and corresponding tokenized payment transaction data to allowretrieval of such information at another time. For example, tokenmanager module 150A may store a payment token and a correspondingtokenized payment transaction locally on a client machine 102A or in adata store 180 accessible to one or more other client machines. Storingtokens such as unique, single-use tokens from tokenized paymenttransactions creates an opportunity to allow users to perform futureassociated contactless transactions, such as returns and exchanges,without modifying NFC terminal 192 behavior.

At block 206, wallet manager 160A of mobile payment system 130Adetermines to provide the stored token to the merchant for a secondtransaction associated with the tokenized payment transaction. In anexample, wallet manager module 160A determines that a payment tokenpreviously used for payment in a tokenized payment transaction (e.g., acontactless mobile payment purchase) is to be provided to a merchant 190in a subsequent, related transaction (e.g., a contactless mobile paymentreturn).

For example, a user may wish to return or exchange an item initiallypurchased using a tokenized payment transaction where a NFC-enabledclient machine 102A provided a unique, single-use payment token to a NFCterminal 192 of a merchant 190 to authorize payment. To reference thefirst tokenized payment transaction, wallet manager 160A determines apayment token to retrieve by examining transaction details selected by auser. Wallet manager 160A then retrieves a payment token (e.g., aninactive, used, or expired payment token) associated with the selectedoriginal transaction and provides that payment token to the merchant 190via a NFC terminal 192. The merchant uses the payment token to lookupthe initial transaction to allow the user to return a product, exchangeproduct, receive a price match discount, receive another type ofdiscount, receive a later-discovered promotion, or perform anotheractivity.

FIG. 3 is a flow diagram for providing replay of tokenized paymenttransactions using an application, according to an example of thepresent disclosure. The method 300 may be performed by processing logicthat may comprise hardware (circuitry, dedicated logic, programmablelogic, microcode, etc.), software (such as instructions run on a generalpurpose computer system, dedicated machine, or processing device),firmware, or a combination thereof. Examples in the method 300 aredescribed with respect to mobile payment system 130A for the sake ofconsistency. Such examples also generally apply to other mobile paymentsystem 130, 130N examples described herein.

Method 300 begins at block 302 when token manager module 150A of paymentsystem 130A generates a payment token to authorize payment of apurchase. In an example, token manager module 150A generates a paymenttoken that allows a user to authorize a payment for the tokenizedpayment transaction using a NFC terminal 192 or tokenized payment system194. For example, token manager module 150A may generate a unique,single-use payment token by using a set of random numeric oralphanumeric values. Token manager module 150A also may generate unique,single-use payment tokens other ways, for example, using one or morevarious factors such as a unique generated device token stored on asecured element of the computing device, a unique generated paymentmethod identifier stored on a secured element of the computing device,date information, time information, location information, or acombination of one or more of these and/or other various factors.

At block 304, wallet manager module 160A of payment system 130A providesthe payment token to a merchant 190 to authorize the payment for thepurchase. In an example, a client machine 102A detects a NFC terminal192 that is prepared to receive a payment token authorizing payment of apending purchase. A user then may provide a generated payment token tothe merchant by tapping client machine 102A on NFC terminal 192, wavingclient machine 102A near NFC terminal 192, entering an authorizationcode on client machine 102A, supplying biometric authenticationinformation to client machine 102A, etc. Once a client machine 102Aprovides a payment token to authorize payment of pending purchase thenremaining steps of the transaction may be completed. The merchant 190uses the payment token to obtain a payment from the payment processor,bank, or other financial institution. The merchant 190 also may storethe payment token used for a purchase for later reference should theuser decide to reference the purchase transaction, for example, toreturn a product, exchange a product, receive a price match discount,receive another type of discount, receive a later-discover promotion,etc.

At block 306, token manager module 150A of payment system 130A createsan association between the payment token and the purchase. In anexample, token manager module 150A creates an association between apayment token and a tokenized payment transaction, by linking thepayment token and transaction details via one or more commonidentifiers. For example, token manager module 150A may associate apayment token and a transaction using a unique transaction ID generatedby mobile payment system 130, a unique transaction ID generated by amerchant 190 or terminal, or any other identifier or combination ofidentifiers that may be used to link a payment token with a transaction.In some examples, token manager module 150A also may associate a paymenttoken the transaction by storing a copy of the payment token with or aspart of corresponding transaction receipt data.

At block 308, token manager module 150A of payment system 130A storesthe association between the payment token and the purchase. In anexample, token manager module 150A stores a payment token, correspondingtransaction details, and at least one identifier associating the paymenttoken with the corresponding transaction on a client machine 102A and/ora separate data store 180. For example, token manager module 150A maystore such information locally on a client machine 102A to allow a userto later retrieve the digital receipt for the transaction and to providea corresponding payment token to a merchant 190. Token manager module150A similarly may save such information in data store 180 (e.g.,network storage, cloud storage, etc.) to allow later retrieval of thedigital receipt for the transaction and a corresponding payment tokenusing any of one or more client machines 102A-102N.

At block 310, communication manager module 140A of mobile payment system130A receives a request from the merchant 190 to provide the paymenttoken during a second transaction related to the purchase. In anexample, the user may visit the same location or a different location ofthe merchant 190 to perform a new transaction related to a purchaseinvolving a payment token. For example, a user may wish to return anitem, to exchange an item, to receive a price match, to receive a laterdiscovered discount, etc. in reference to the original purchase. In oneexample, a NFC terminal 192 of merchant 190 prompts or directs a user toprovide a payment token from the earlier purchase at a NFC terminal 192.

At block 312, wallet manager module 160A of mobile payment system 130Aselects a transaction record corresponding to the tokenized paymenttransaction to retrieve the payment token for the merchant 190. In anexample, wallet manager module 160A provides a user with a graphicaluser interface to browse, search, sort, filter, retrieve, and select oneor more digital wallet receipts. The user then may select a digitalwallet receipt associated with an earlier transaction to retrievetransaction details and an associated payment token to provide to amerchant 190.

At block 314, wallet manager module 160A of mobile payment system 130Aprovides the payment token to the merchant 190 as part of the secondtransaction. In an example, a user may tap or wave their computingdevice at a NFC terminal 192 waiting to accept a payment tokenassociated with an earlier transaction at block 312. A merchant 190 thenmay find and retrieve details about the earlier transaction using thepayment token provided by the user to complete a new transaction basedon the earlier transaction.

FIG. 4 is a flow diagram for providing replay of tokenized paymenttransactions using a non-payment identifier, according to an example ofthe present disclosure. The method 400 may be performed by processinglogic that may comprise hardware (circuitry, dedicated logic,programmable logic, microcode, etc.), software (such as instructions runon a general purpose computer system, dedicated machine, or processingdevice), firmware, or a combination thereof. Examples in the method 400are described with respect to mobile payment system 130A for the sake ofconsistency. Such examples also generally apply to other mobile paymentsystem 130, 130N examples described herein.

Method 400 begins at block 402 when token manager module 150A of mobilepayment system 130A generates a payment token to use in a tokenizedpayment transaction. In an example, token manager module 150A generatesa payment token authorizing a payment for a tokenized paymenttransaction involving a NFC terminal 192 or tokenized payment system194. For example, token manager module 150A may generate unique,single-use payment token for each tokenized or contactless paymenttransaction of a user and/or a plurality of users to provide an enhancedlevel of transactional and payment method security.

At block 404, wallet manager module 160A of mobile payment system 130Aprovides the payment token for payment during the tokenized paymenttransaction. In an example, a user provides a payment token to NFCterminal 192 by moving a NFC-enabled client machine 102A in range of NFCterminal 192. A user also may sending a payment token to a tokenizedpayment system 194, for example, by initiating such activity using anapplication running on client machine 102A.

At block 406, wallet manager module 160A of mobile payment system 130Agenerates a non-payment identifier to identify the tokenized paymenttransaction. In an example, wallet manager module 160A generates aunique non-payment identifier for a tokenized payment transactioninvolving a payment token. A non-payment identifier may be a uniqueidentifier that allows a tokenized payment transaction to be locatedwithout using the original payment token involved in the transaction. Anon-payment identifier may include a unique numeric string, alphanumericstring, bar code, QR code, or any other unique identifier that can beused to reference a tokenized payment transaction. In some examples, amerchant 190 may generate a non-payment identifier to uniquely identifya tokenized payment transaction and provide the non-payment identifierto a user where it may be stored on client machine or in another datastore 180 for future reference.

At block 408, wallet manager module 160A of mobile payment system 130Aassociates the non-payment identifier with the tokenized paymenttransaction. In an example, wallet manager module 160A associates thenon-payment identifier generated for a tokenized payment transaction toallow the tokenized payment transaction to be referenced by thenon-payment identifier at another time. For example, wallet managermodule 160A may add a non-payment identifier to transaction details of acompleted tokenized payment transaction.

At block 410, wallet manager module 160A of mobile payment system 130Aprovides the non-payment identifier to a merchant to allowidentification of the tokenized payment transaction at another time. Inan example, wallet manager module 160 provides the non-paymentidentifier associated with the tokenized payment transaction to amerchant 190. The merchant 190 then may store the non-payment identifierreceived from the user to reference the tokenized payment transaction atanother time (e.g., based on a user inquiry or related transaction). Insome examples, a merchant 190 stores a non-payment identifier it hasgenerated and provided to a user. The user receives and stores thenon-payment identifier generated by the merchant 190 to reference thetokenized payment transaction at another time without providing thepayment token used in the transaction.

At block 412, communication manager module 140A of mobile payment system130A receives a request to provide the non-payment identifier during asecond transaction with the merchant. In an example, a user may wish toreference, alter, modify, append, or cancel a previously completedtokenized payment transaction at another time. When involved in such atransaction, a user may receive a request from a merchant 190 to providea non-payment identifier uniquely identifying a previous transaction.For example, a NFC terminal 192 may prompt a user to submit anon-payment identifier using a NFC-enabled computing device or atokenized payment system 194 may request that a user submit anon-payment identifier via a mobile application. Further, a standardterminal 196 may request a user to provide a non-payment identifier byinputting or scanning non-payment identifier data.

At block 414, wallet manager module 160A of mobile payment system 130Aselects the transaction record corresponding to the tokenized paymenttransaction to retrieve the non-payment identifier. In an example, auser locates and selects a transaction receipt having an associatednon-payment identifier from a list of one or more transaction receiptsprovided by wallet manager module 160A to retrieve the associatednon-payment identifier.

In an example, a user places client machine 102A in range of a NFCterminal 192 to receive a merchant 190 or other identifier (e.g.,merchant ID, customer loyalty ID, etc.) that can be used to identify oneor more transactions. In response, wallet manager module 160A receivesthe merchant-provided transaction identifier and finds and provides oneor more matching transactions to a user. The user then may select one ofthe matching transactions to retrieve the associated non-paymentidentifier of the selected transaction.

At block 416, wallet manager module 160A of mobile payment system 130Aprovides the non-payment identifier to the merchant to complete thesecond transaction. In an example, after a user selects a transactionhaving an associated non-payment identifier at block 414, the user thenplaces client machine 102A near a NFC terminal 192 ready to accept anduse the non-payment identifier to retrieve details of the associatedtransaction. In one example, a user may submit the retrieved non-paymentidentifier to a tokenized payment system 194 using a computerapplication running on client machine. Further, a user may enter or scannon-payment identifier information provided by client machine at astandard terminal 196. Once a merchant 190 receives a non-paymentidentifier for a tokenized payment transaction, returns, exchanges, andother related transactions can be completed using existing merchant 190processes and systems.

FIG. 5 illustrates a diagram of a machine in the exemplary form of acomputer system 500, within which a set of instructions for causing themachine to perform any one or more of the methodologies discussed hereinmay be executed. In other examples, the machine may be connected (e.g.,networked) to other machines in a LAN, an intranet, an extranet, or theInternet. The machine may operate in the capacity of a server or aclient machine in client-server network environment, or as a peermachine in a peer-to-peer (or distributed) network environment. Themachine may be a personal computer (PC), a tablet PC, a set-top box(STB), a Personal Digital Assistant (PDA), a cellular telephone, awearable computing device, a web appliance, a server, a network router,switch or bridge, or any machine capable of executing a set ofinstructions (sequential or otherwise) that specify actions to be takenby that machine. Further, while only a single machine is illustrated,the term “machine” shall also be taken to include any collection ofmachines that individually or jointly execute a set (or multiple sets)of instructions to perform any one or more of the methodologiesdiscussed herein.

The exemplary computer system 500 includes a processing device(processor) 502, a main memory 504 (e.g., read-only memory (ROM), flashmemory, dynamic random access memory (DRAM) such as synchronous DRAM(SDRAM), double data rate (DDR SDRAM), or DRAM (RDRAM), etc.), a staticmemory 506 (e.g., flash memory, static random access memory (SRAM),etc.), and a data storage device 518, which communicate with each othervia a bus 530.

Processor 502 represents one or more general-purpose processing devicessuch as a microprocessor, central processing unit, or the like. Moreparticularly, the processor 502 may be a complex instruction setcomputing (CISC) microprocessor, reduced instruction set computing(RISC) microprocessor, very long instruction word (VLIW) microprocessor,or a processor implementing other instruction sets or processorsimplementing a combination of instruction sets. The processor 502 alsomay be one or more special-purpose processing devices such as anapplication specific integrated circuit (ASIC), a field programmablegate array (FPGA), a digital signal processor (DSP), network processor,or the like. The processor 502 is configured to execute instructions 522for performing the operations and steps discussed herein.

The computer system 500 also may include a network interface device 508.The computer system 500 may further include a video display unit 510(e.g., a liquid crystal display (LCD) or a cathode ray tube (CRT)), analphanumeric input device 512 (e.g., a keyboard), a cursor controldevice 514 (e.g., a mouse), and a signal generation device 516 (e.g., aspeaker).

The data storage device 518 may include a computer-readable storagemedium 528 on which is stored one or more sets of instructions 522(e.g., software computer instructions) embodying any one or more of themethodologies or functions described herein. The instructions 522 alsomay reside, completely or at least partially, within the main memory 504and/or within the processor 502 during execution thereof by the computersystem 500, the main memory 504 and the processor 502 also constitutingcomputer-readable storage media. The instructions 522 may be transmittedor received over a network 520 via the network interface device 508.

In one example, the instructions 522 include instructions for one ormore modules of a mobile payment system (e.g., mobile payment system 130of FIG. 1) and/or a software library containing methods that call amobile payment system. While the computer-readable storage medium 528(machine-readable storage medium) is shown as an example to be a singlemedium, the term “computer-readable storage medium” should be taken toinclude a single medium or multiple media (e.g., a centralized ordistributed database, and/or associated caches and servers) that storethe one or more sets of instructions. The term “computer-readablestorage medium” also may include any medium that is capable of storing,encoding or carrying a set of instructions for execution by the machineand that cause the machine to perform any one or more of themethodologies of the present disclosure. The term “computer-readablestorage medium” shall accordingly be taken to include, but not belimited to, solid-state memories, optical media, and magnetic media.

Numerous details are set forth in the foregoing description. However, itwill be apparent to one of ordinary skill in the art having the benefitof this disclosure that the present disclosure may be practiced withoutthese specific details. In some instances, well-known structures anddevices are shown in block diagram form, rather than in detail, to avoidobscuring the present disclosure.

Some portions of the detailed description have been presented in termsof algorithms and symbolic representations of operations on data bitswithin a computer memory. Here, an algorithm is generally conceived tobe a self-consistent sequence of steps leading to a desired result. Thesteps are those requiring physical manipulations of physical quantities.Usually, though not necessarily, these quantities take the form ofelectrical or magnetic signals capable of being stored, transferred,combined, compared, and otherwise manipulated. It has proven convenientat times, for reasons of common usage, to refer to these signals asbits, values, elements, symbols, characters, terms, numbers, or thelike.

It should be borne in mind, however, that all of these and similar termsare to be associated with the appropriate physical quantities and aremerely convenient labels applied to these quantities. Unlessspecifically stated otherwise as apparent from the following discussion,it is appreciated that throughout the description, discussions utilizingterms such as “computing”, “comparing”, “associating”, “applying”,“transmitting”, “receiving,” “processing,” or the like, refer to theactions and processes of a computer system, or similar electroniccomputing device, that manipulates and transforms data represented asphysical (e.g., electronic) quantities within the computer system'sregisters and memories into other data similarly represented as physicalquantities within the computer system memories or registers or othersuch information storage, transmission or display devices.

Certain examples of the present disclosure also relate to an apparatusfor performing the operations herein. This apparatus may be constructedfor the intended purposes, or it may comprise a general-purpose computerselectively activated or reconfigured by a computer program stored inthe computer. Such a computer program may be stored in a computerreadable storage medium, such as, but not limited to, any type of diskincluding floppy disks, optical disks, CD-ROMs, and magnetic-opticaldisks, read-only memories (ROMs), random access memories (RAMs), EPROMs,EEPROMs, magnetic or optical cards, or any type of media suitable forstoring electronic instructions.

It is to be understood that the above description is intended to beillustrative, and not restrictive. Many other examples will be apparentto those of skill in the art upon reading and understanding the abovedescription. The scope of the disclosure therefore should be determinedwith reference to the appended claims, along with the full scope ofequivalents to which such claims are entitled.

1. (canceled)
 2. A method comprising: providing, by a user device, apayment token to a device associated with a merchant, the payment tokenfor payment during a payment transaction between the user device and thedevice associated with the merchant, the payment token provided as aform of payment in the payment transaction; associating, by the userdevice, a non-payment identifier with the payment token and thetokenized payment transaction, wherein a digital receipt or a recordindicates the association of the non-payment identifier, the paymenttoken, and the payment transaction; determining, based on a secondtransaction, that the non-payment identifier is to be provided to themerchant for the second transaction that is related to the paymenttransaction; and providing the non-payment identifier to the merchant aspart of the second transaction to allow the merchant to subsequentlyreference at least one detail of the payment transaction.
 3. The methodof claim 2, wherein the non-payment identifier is for subsequentretrieval of transaction data of the payment transaction.
 4. The methodof claim 2, wherein the second transaction involves a return of at leastone item to the merchant, the item being a part of the paymenttransaction.
 5. The method of claim 2, wherein second transaction isperformed via a second device that is different from the user device,wherein both the user device and the second device are authenticateddevices for a user, wherein the transaction and the second transactionare associated with the user.
 6. The method of claim 2, wherein thenon-payment identifier is a QR code or a bar code that is displayed bythe user device for access by a merchant device associated with themerchant.
 7. The method of claim 6, wherein the merchant device is thedevice, and wherein the QR code of the non-payment identifier is a partof the digital receipt.
 8. The method of claim 2, wherein thenon-payment identifier, the payment token, and a linkage between thenon-payment identifier is stored at a server for retrieval by one ormore of the user device and the device associated with the merchant. 9.The method of claim 2, wherein the second transaction is initiated by asecond user device that is authenticated to use the non-paymentidentifier.
 10. A user device, comprising: a non-transitory memorystoring instructions; and a processor configured to execute theinstructions to cause the user device to: provide a payment token to adevice associated with a merchant, the payment token for payment duringa payment transaction between the user device and the device associatedwith the merchant; associate a non-payment identifier with the paymenttoken and the tokenized payment transaction, said associating comprisingstoring the association of the non-payment identifier, the paymenttoken, and the payment transaction; determine, based on a secondtransaction, that the non-payment identifier is to be provided to themerchant for the second transaction that is related to the paymenttransaction; and provide the non-payment identifier to the merchantduring the second transaction to allow the merchant to subsequentlyreference at least one detail of the payment transaction.
 11. The deviceof claim 10, wherein executing the instructions further causes thedevice to generate the non-payment identifier to identify the tokenizedpayment transaction.
 12. The device of claim 10, wherein the secondtransaction involves a return of at least one item to the merchant, theitem being a part of the payment transaction.
 13. The device of claim10, wherein the non-payment identifier is a QR code or a bar code thatis displayed by the user device for access by a merchant deviceassociated with the merchant.
 14. The device of claim 10, wherein saidproviding the non-payment identifier comprises providing a QR code or abar code, via a display the user device, for access by a merchant deviceassociated with the merchant.
 15. The device of claim 10, wherein thenon-payment identifier is for subsequent retrieval of transaction dataof the payment transaction.
 16. A non-transitory machine-readable mediumhaving instructions stored thereon, the instructions executable to causeperformance of operations comprising: providing a payment token to adevice associated with a merchant, the payment token for payment duringa payment transaction between a user device and the device associatedwith the merchant; associating a non-payment identifier with the paymenttoken and the tokenized payment transaction, said associating comprisingstoring the association of the non-payment identifier, the paymenttoken, and the payment transaction; determining, based on a secondtransaction, that the non-payment identifier is to be provided to themerchant for the second transaction that is related to the paymenttransaction; and providing the non-payment identifier to the merchantduring the second transaction to allow the merchant to subsequentlyreference at least one detail of the payment transaction.
 17. Thenon-transitory machine-readable medium of claim 16, wherein theoperations further comprise generating the non-payment identifier toidentify the tokenized payment transaction.
 18. The non-transitorymachine-readable medium of claim 16, wherein the second transactioninvolves a return of at least one item to the merchant, the item being apart of the payment transaction
 19. The non-transitory machine-readablemedium of claim 16, wherein the non-payment identifier is a QR code or abar code that is displayed by the user device for access by a merchantdevice associated with the merchant.
 20. The non-transitorymachine-readable medium of claim 16, wherein said providing thenon-payment identifier comprises providing a QR code or a bar code, viaa display the user device, for access by a merchant device associatedwith the merchant.
 21. The non-transitory machine-readable medium ofclaim 16, wherein the non-payment identifier is for subsequent retrievalof transaction data of the payment transaction.